Symptom

﻿This article discusses how to restrict goal plan access to specific users for clients that have RBP - Role Based Permissions.

Environment

Goal Management

Resolution

You can limit access for users to certain goal plans, allowing (for example) one business unit to use one goal plan and another business unit to use another goal plan.

Configuration (non-Role Based Permissions)

To enable the plan again for all users, check the box for the goal plan in New Admin tools > Set User Permissions > Goal Plan Permissions. For more information on doing this if you do not have RBP enabled please view: https://support.wdf.sap.corp/sap/support/notes/2072271

Configuration (Role Based Permissions)

With RBP, there is no need to import a file. You just add the goal plan permission to the role, and setup a target population.

Steps in Provisioning: For Instances WITH Role Based Permission Enabled

2. At the bottom of the first section of configurations, click the check boxes for the applicable access permissions: performance, goals, or both.

Enable Performance Management Access Permission

Enable Objective Management Access Permission

3. Click the "Save Feature" button at the top of the section to save the configurations. This is all that needs to be done in Provisioning.

END OF INTENAL INFORMATION

Steps in Administration Tools:

1. In the instance, navigate to the "New Admin Tools."

2. In the New Admin Tools, navigate to the "Set User Permissions" interface and click "Manage Permission Roles."

3. Either create a new Permisison Role by clicking "Create New" or navigate to the Role you want to edit by clicking on the permission role link.

4. Under the User Permissions for Objectives, make sure that none of the permissions are clicked. Save changes.

5. Under the User Permissions for Performance, make sure that none of the permissions are checked. Save changes.

For a user in the Floor Workers group, which now has no permission to access Objectives (Goal Management) or Performance, the Home menu now looks like this:

For a user who does have permission to access Objectives and Performance, the menu looks like this:

And the User Permissions interfaces look like this:

And this:

Last, this permission can be set for all users in an instance by creating a new Permission Role that includes everybody, and not assigning access permissions to that group. Creating a group that includes everyone looks like this: